Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-770 (不加限制或调节的资源分配) — Vulnerability Class 795

795 vulnerabilities classified as CWE-770 (不加限制或调节的资源分配). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-68934 Discourse Has Denial of Service (DoS) Vulnerability in Drafts Creation Endpoint — discourse 6.5 Medium2026-01-28
CVE-2025-68659 Discourse has DoS vulnerability in username change endpoint — discourse 4.3 Medium2026-01-28
CVE-2020-36943 aSc TimeTables 2021.6.2 - Denial of Service — asc Timetables 7.5 High2026-01-28
CVE-2026-24738 gmrtd ReadFile Vulnerable to Denial of Service via Excessive TLV Length Values — gmrtd 7.5AIHighAI2026-01-27
CVE-2026-23881 Kyverno Denial of Service via Context Variable Amplification in Policy Engine — kyverno 7.7 High2026-01-27
CVE-2020-36950 Laravel Nova 3.7.0 - 'range' DoS — Laravel Nova 6.5 Medium2026-01-27
CVE-2020-36949 TapinRadio 2.13.7 - Denial of Service — TapinRadio 7.5 High2026-01-27
CVE-2020-36946 SyncBreeze 10.0.28 - 'login' Denial of Service — SyncBreeze 7.5 High2026-01-27
CVE-2025-14525 Kubevirt: kubevirt: vm administration denial of service via guest agent — Red Hat OpenShift Virtualization 4 6.4 Medium2026-01-26
CVE-2026-1224 Tanium addressed an uncontrolled resource consumption vulnerability in Discover. — Discover 4.9 Medium2026-01-26
CVE-2021-47895 Nsauditor 3.2.2.0 - 'Event Description' Denial of Service — Nsauditor 7.5 High2026-01-23
CVE-2021-47894 Managed Switch Port Mapping Tool 2.85.2 - Denial of Service — Managed Switch Port Mapping Tool 7.5 High2026-01-23
CVE-2021-47893 AgataSoft PingMaster Pro 2.1 - Denial of Service — AgataSoft PingMaster Pro 7.5 High2026-01-23
CVE-2025-13927 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 7.5 High2026-01-22
CVE-2026-1102 Allocation of Resources Without Limits or Throttling in GitLab — GitLab 5.3 Medium2026-01-22
CVE-2026-24006 Seroval affected by Denial of Service via Deeply Nested Objects — seroval 7.5 High2026-01-22
CVE-2026-23963 Mastodon missing length limits on list names, filter names, and filter keywords — mastodon 4.3 Medium2026-01-22
CVE-2026-23962 Mastodon vulnerable to Denial of Service from a single post (client/server) — mastodon 7.5 High2026-01-22
CVE-2026-23957 seroval is vulnerable to Denial of Service via array serialization — seroval 7.5 High2026-01-22
CVE-2025-68138 EVerest affected by memory exhaustion in libocpp — everest-core 4.7 Medium2026-01-21
CVE-2025-68136 EVerest's inadequate session handling can lead to memory-related errors or exhaustion of the operating system’s file descriptors, resulting in a denial of service — everest-core 7.4 High2026-01-21
CVE-2021-47877 GeoGebra Graphing Calculato‪r‬ 6.0.631.0 - Denial Of Service — GeoGebra Graphing Calculato‪r‬ 7.5 High2026-01-21
CVE-2021-47876 GeoGebra Classic 5.0.631.0-d - Denial of Service — GeoGebra Classic 7.5 High2026-01-21
CVE-2021-47875 GeoGebra CAS Calculator 6.0.631.0 - Denial of Service — CAS Calculator 9.8 Critical2026-01-21
CVE-2021-47865 ProFTPD 1.3.7a - Remote Denial of Service — ProFTPD 7.5 High2026-01-21
CVE-2025-68133 EVerest's unlimited connections can lead to DoS through operating system resource exhaustion — everest-core 7.4 High2026-01-21
CVE-2025-11044 Vulnerability on Automation Runtime my cause DoS Conditions — Automation Runtime 6.8 Medium2026-01-19
CVE-2026-23490 pyasn1 has a DoS vulnerability in decoder — pyasn1 7.5 High2026-01-16
CVE-2025-14435 Application-Level DoS via infinite re-render loop in user profile handling — Mattermost 6.8 Medium2026-01-16
CVE-2021-47793 Telegram Desktop 2.9.2 - Denial of Service (PoC) — Telegram Desktop 7.5 High2026-01-15

Vulnerabilities classified as CWE-770 (不加限制或调节的资源分配) represent 795 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.